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Abstract 

Military  deception  is  one  of  the  tools  of  Information  Warfare  (IW)  and  a  key  enabler  of 
“Decision  Superiority.”  The  next  generation  of  mihtary  deception  wiU  include  digital  deception: 
deception  in  cyberspace.  Joint  Vision  2020  calls  for  U.S.  Joint  Forces  to  strive  for,  and  obtain 
Decision  Superiority  as  the  goal  of  their  Command  and  Control  Warfare  (C2W)  efforts.  The  logical 
culmination  of  the  pursuit  of  dominance  across  the  cognitive  hierarchy,  Decision  Superiority  is  the 
abihty  to  make  pmdent  mihtary  decisions  while  denying  one’s  adversaries  the  same. 

What  is  deception’s  role  in  the  pursuit  of  Information  and  Decision  Superiority?  How  does 
digital  deception  differ  from  traditional  mihtary  deception?  What  advantages  does  it  offer  over 
traditional  deception?  What  are  the  chahenges  to  implementing  deception  in  the  digital  domain? 
These  are  the  questions  addressed. 


a 


Introduction 


To  secure  ourselves  against  defeat  lies  in  our  own  hands,  but  the 
opportunity  of  defeating  an  enemy  is  provided  by  the  enemy 
himself. 

Sun  Tzu‘ 

Joint  Vision  2020  calls  for  U.S.  Joint  Forces  to  strive  for,  and  obtain  Decision  Superiority 
as  the  goal  of  their  Command  and  Control  Warfare  (C2W)  efforts.^  The  logical  culmination  of  the 
pursuit  for  dominance  across  the  cognitive  hierarchy,  Decision  Superiority  is  the  ability  to  make 
prudent  mihtary  decisions  while  denying  one’s  adversaries  the  same.  Mihtary  deception  is  one  of 
the  tools  of  Information  Warfare  (IW)  and  a  key  enabler  of  Decision  Superiority.  The  latest  form  of 
deception,  digital  deception,  (i.e.,  deception  in  cyber  space),  offers  a  means  for  today’s  combatant 
commander  to  not  only  defend  against  enemy  Computer  Network  Attacks  (CNAs),  but  to  turn 
those  attacks  into  offensive  weapons.  The  next  generation  of  mihtary  deception  should  include 
digital  deception. 

With  the  emergence  of  “the  network”  as  a  primary  medium  for  storing  and  transmitting  data 
and  information,  deception,  which  in  and  of  itself  is  merely  the  passing  of  information,  wiU  take  place 
within  the  digital  domain.  Deception  in  cyberspace  poses  unique  chahenges  in  its  planning  and 
execution:  1)  Digital  deception  requires  added  coordination  and  deconfliction  because  it  crosses  the 
boundaries  of  four  distinct  but  interrelated  mihtary  doctrines,  2)  The  modem  information 
environment  is  changing  at  a  meteoric  rate,  3)  Information  pohcies  and  laws  are  unclear  and 
incomplete,  and  4)  The  asymmetric  nature  of  cyberspace  activities  collapses  factor  time  while 
greatly  increasing  factors  space  and  force. 


1 


The  discussion  that  follows  does  not  address  the  “mechanics”  of  designing  and  implementing 


deception  (a  subject  thoroughly  addressed  in  U.S.  Joint  Doctrine  for  Military  Deception,  Joint  Pub 
3-58),  nor  does  it  address  the  technical  specifics  of  implementing  digital  deception  (e.g.,  particular 
hardware,  software,  or  network  configurations:  a  subject  requiring  an  advanced  degree;  or  at  least 
the  vast  experience  of  a  teenage  computer  wizard).  ^  The  intent  is  to  firmly  estabhsh  in  the  reader’s 
mind,  an  appreciation  for: 

1)  How  deception  (traditional  or  digital)  contributes  to  Information  and  Decision 
Superiority 

2)  The  advantages  of  digital  deception;  particularly  passive  deception  during  a 
CNA 

3)  The  challenges  to  planning  and  implementing  digital  deception 

4)  U.S.  mihtary  doctrine  affecting  digital  deception. 


Superiority  Across  the  Cognitive  Scale 

In  order  to  achieve  victory  you  must  place  yourself  in  your 
opponent’s  skin.  If  you  don’t  understand  yourself  you  will  lose 
one  hundred  percent  of  the  time.  If  you  understand  yourself  you 
will  win  fifty  percent  of  the  time.  If  you  understand  yourself  and 
your  opponent,  you  will  win  one  hundred  percent  of  the  time. 

Tsutomu  Oshima!^ 

What  exactly  is  Decision  Superiority?  World  War  n  (WWII)  offers  an  excellent  example. 
In  the  Pacific  Theater,  the  Japanese  used  analysis  of  past  American  operations  and  what  they 
understood  U.S.  interests  to  be  in  order  to  simulate  the  American  decision-making  process.  By 
analyzing  the  facts,  they  were  able  to  envisage  the  plans  that  would  best  serve  U.S.  policy. 
Although  lacking  intelligence  information,  the  Japanese  were  highly  successful  in  forecasting 
Allied  decisions.  They  accurately  predicted  the  American  plan  for  parallel  advances  across  the 
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Pacific  by  Nimitz  and  MacArthur.  They  further  predieted  not  only  the  islands  on  whieh  the  initial 


Allied  invasion  of  the  Japanese  homeland  would  take  plaee,  but  also  the  speeifie  beaehes  to  be 
breaehed.  Ineredibly,  the  Japanese  sueeessfuUy  foretold  the  Allied  plans  before  the  Allies  finalized 
what  they  would  be. 

Meanwhile,  the  United  States  and  its  alhes  were  developing  an  elaborate  deeeption 
operation,  Operation  PASTEL,  to  support  the  homeland  invasion.  PASTEL  involved  an  extensive 
misinformation  eampaign,  feigned  air  asset  deployments,  and  phony  supply  drops  to  eonfuse  the 
Japanese  as  to  where  and  when  the  aetual  invasion  would  take  plaee.  However,  based  on  their 
knowledge  and  beliefs  formed  by  past  U.S.  actions,  the  Japanese  fortified  the  eorreet  areas  and 
prepared  a  defense  using  the  predieted  U.S.  plan  as  their  blueprint.  Even  though  the  invasion  of  the 
Japanese  homeland  would  never  take  plaee,  one  ean  eonelude  that  the  Allied  deeeption  plans  were 
likely  to  have  had  marginal  sueeess  in  that  the  U.S.  planners  were  unable  to  alter  the  understanding 
and  beliefs  of  the  Japanese.  The  Japanese  enjoyed  Decision  Superiority.^ 

A  basie  overview  of  eognition  will  assist  in  understanding  Japan’s  sueeess  in  this  example, 
and  to  lay  the  groundwork  for  sueeessfiil  deeeption:  traditional  and  digital.  Data,  information, 
knowledge,  and  understanding  are  often  treated  as  synonyms.  They  are  in  faet,  deseiiptors  of 
various  stages  of  eognition:  the  evolution  from  raw  data  to  information,  information  to  knowledge, 
and  knowledge  to  understanding.  Data  is  individual  measurements  or  observations.  Information  is 
data  that  is  proeessed  into  a  usable  form:  e.g.,  sorted,  eategoiized,  ete.  Information  assembled 
within  a  eertain  eontext  beeomes  knowledge.  Knowledge  vahdated  against  a  set  of  behefs 
transforms  to  understanding.^  Knowledge  and  understanding  form  the  basis  for  making  deeisions. 
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Exploiting  the  cognitive  hierarchy  to  gain  Information  and  Decision  Superiority  is  the  focus  of  10  and 


Command  and  Control  Warfare  (C2W). 

Attacking  the  lower  end  of  the  cognitive  hierarchy  has  been  the  primary  focus  of  10  and 
C2W  during  recent  U.S.  mihtary  operations.  Neutrahzing,  if  not  destroying  vital  enemy  Command 
and  Control  (C2)  nodes  received  high  priority  during  the  initial  phases  of  both  Operation  DESERT 
STORM^  and  Operation  ALLIED  EORCE.^  Just  as  the  Japanese  observed  the  Allies  during 
WWn,  future  adversaries  are  hkely  to  analyze  U.S.  tactics  and  prepare  accordingly.  Merely 
denying  the  enemy  access  to  information  is  likely  to  be  insufficient  to  create  the  operational  leverage 
sought  from  Information  Superiority  in  future  conflicts.  Recognizing  this  fact,  in  Joint  Vision  2020 
the  Joint  Chiefs  of  Staff  warn  against  rehance  solely  on  Information  Superiority.  They  state: 
“Information  Superiority  provides  the  joint  force  a  competitive  advantage  only  when  it  is  effectively 
translated  into  superior  knowledge  and  decisions.’* 

To  obtain  superiority  at  the  upper  end  of  the  cognitive  hierarchy,  today’s  operational 
commander  must  not  lose  sight  of  the  fact  that  able  adversaries  do  not  make  decisions  solely  based 
on  data  processed  into  information.  Enemy  decision-makers  take  into  account  the  integrity  of 
the  information,  the  quality  of  the  information,  the  significance  of  the  information,  and  how 
that  information  correlates  to  their  understanding  of  U.S.  motives,  processes,  doctrine,  and 
tactics.  “Knowledge  Warfare”  is  warfare  conducted  against  the  upper  levels  of  the  cognitive 
model:  knowledge  and  understanding.  Achieving  Decision  Superiority  is  the  ultimate  goal  of 
Knowledge  Warfare.  A  primary  means  of  invading  the  upper  levels  of  the  enemy’s  cognitive 
process  is  military  deception. 
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The  “Gentle  Tao”  of  Deception  ^ 

When  someone  attacks  you,  he  gives  you  a  present  of  his  strength. 

To  make  use  of  this  gift  you  must  know  how  to  receive  it. 

Yukiso  Yamamoto^^ 

Do  not  think  of  attack  and  defense  as  two  separate  things.  An 

attack  will  be  a  defense,  and  a  defense  must  be  an  attack. 

Kazuzo  Kudo‘s 

The  Joint  Chiefs  define  mihtary  deception  as:  “Those  actions  executed  to  deliberately 
mislead  adversary  mihtary  decision  makers  as  to  friendly  mihtary  capabihties,  intentions,  and 
operations,  thereby  causing  the  adversary  to  take  specific  actions  that  will  contribute  to  the 
accomphshment  of  the  friendly  mission.”^^  Deception  can  be  focused  at  national  decision  makers, 
mihtary  decision  makers,  and  even  the  soldier  in  the  trench.  It  is  apphcable  at  each  level  of  war  and 
across  ah  phases  of  mihtary  operations.'"* 

Historical  use  of  deception  by  the  United  States  combined  misinformation  with  feigned 
troop  movement  and  resource  allocation  to  shape  the  enemy’s  belief,  that  is,  their  perceived 
knowledge  of  U.S.  intent.  One  of  the  most  famous  and  successful  mihtary  deceptions  is  Operation 
BODYGUARD.  BODYGUARD  was  the  elaborate  set  of  deception  operations  conducted  in 
preparation  for  the  Normandy  Invasion  of  WWn.  It  included  feints  into  Scandinavia  and  the 
Balkans,  and  the  estabhshment  of  an  imaginary  First  U.S.  Army  Group  (FUSAG)  purportedly  under 
the  command  of  General  George  Patton.  The  FUSAG  was  to  spearhead  a  notional  invasion  at  Pas 
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de  Calais.  Carefully  misdirected  operational  fires  and  a  faux  FUSAG  radio  group  transmitting 
deceptive  radio  traffic  supported  the  illusion.  This  extensive  deception,  attributed  as  a  key  factor  in 
the  success  of  the  invasion  at  Normandy,  was  based  on  Allied  understanding  of  the  Germans’  behef 
that  the  invasion  would  take  place  at  Pas  de  Cahas. 

Modem  mihtary  deception  operations  will  include  digital  deception.  Today,  hteraUy  every 
aspect  of  the  U.S.  mihtary  is  affected  by  world-wide-web  and  network-based  information  and 
knowledge  systems.  Through  initiatives  like  the  Army’s  Force  AX/ battlefield  digitizahon  initiahve 
and  the  Tactical  Internet',  the  Navy’s  Information  Technology  Vision  (IT-21)  and  the  Navy- 
Marine  Corps  Intranet  (NMCI);  and  the  Air  Force’s  Combat  Information  Transport  System 
(CITS)  and  the  Theater  Battle  Management  Core  System  (TBMCS);  the  U.S.  mihtary  is  pursuing 
the  abihty  to:  I)  Distribute  combat  information  to  soldiers,  sailors,  and  airmen,  providing  them  with 
enemy  and  friendly  situational  awareness,  2)  Link  deployed  forces  to  their  sustaining  bases  by 
means  of  a  global  information  network  to  anticipate  requirements  and  move  materiel  when  and 
where  it  is  needed,  and  3)  Implement  information  management  processes  and  systems  essential  to 
doing  business  on  the  Internet}^ 

These  significant  investments  in  network-based  information  management  emphasize  the 
extent  to  which  the  U.S.  mihtary  is  rehant  on  the  digital  domain.  Such  rehance  wih  certainly  draw  the 
attention  of  U.S.  adversaries,  creating  an  opportunity  to  exploit  their  attempts  at  gathering  digital 
information.  Newland  observes:  “While  the  US  [5/c]  wih  enjoy  information  superiority  over 
virtuahy  any  adversary  we  may  face,  it  should  never  be  assumed  that  we  wih  be  ahowed  to  retain  it 
or  use  it  to  fuh  advantage.  What  information  superiority  reahy  means  is  being  the  one  most 
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dependent  on  computer  and  communications  technology  for  combat  success”  (emphasis 
mine).'’ 

Digital  deception  does  not  differ  from  traditional  deception  with  respect  to  its  objective  and 
design.  It  differs  only  in  that  the  illusion  is  created  in  cyberspace.  Digital  deception  can  be  a  “stand¬ 
alone”  operation,  or  an  element  of  a  more  comprehensive  deception  plan  in  which  other  elements 
are  also  employed  e.g.,  feints,  demonstrations,  psychological  operations,  etc. 

Deceptive  digital  data  and  information  can  be  passed  to  the  enemy  by  either  active  or 
passive  means.  To  pass  the  information  actively,  one  would  attempt  to  insert  the  information  into 
the  enemy’s  information  environment.  Active  deception  of  this  type  would  require  “hacking”  into 
enemy  information  systems.  Passive  deception  takes  advantage  of  the  enemy’s  attempts  to  hack 
into  one’s  own  information  environment  and  allows  the  capture  of  deceptive  information.  This 
passive  approach  to  deceptive  information  transfer  is  akin  to  the  practice  of  self-defense  using  the 
philosophy  of  Judo. 

“When  one  is  attacked  by  the  enemy  you  do  not  oppose  him.  Instead  you  yield 
to  him,  just  like  the  matador  yields  to  the  bull,  and  you  use  his  strength  and  the 
principle  of  balance  to  bring  about  his  downfall.  Supposing,  for  example,  there 
is  a  blow  coming  at  me  from  a  certain  direction.  Instead  of  defending  myself, 
and  pushing  the  blow  off,  the  idea  in  judo  is  to  carry  the  blow  away.  The  knee 
goes  out,  catching  the  adversary  below  his  point  of  balance,  and  he  drops  with 
a  ‘bang’  brought  about  on  his  own  initiative,  and  your  cunning.” 

Passive  deception  is  particularly  appearing  in  that  the  enemy  does  most  of  “the  work.” 
Allowing  the  adversary  to  work  at  gaining  information  establishes  authenticity.  Newland  states  that: 
“If  at  all  possible,  the  enemy  should  be  enticed  to  attack  on  our  terms  so  that  we  can  control  what 
he  accesses  and  lead  him  to  believe  he  has  succeeded.’*'  Passive  deception  is  attractive  in  that  the 
adversary  is  the  one  conducting  the  CNA.  As  discussed  in  a  following  section,  the  legal  aspects  of 
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conducting  a  CNA  are  considerable.  Within  the  constraints  of  perfidy  however,  there  are  few 
restrictions  on  allowing  a  “hacker”  to  “take”  deceptive  information. 

How  can  a  CINC  add  digital  deception  as  an  arrow  in  his  quiver  and  hardening  to  his  or  her 
armor?  How  can  they  facihtate  the  deception?  What  are  the  significant  factors  they  must  consider? 
These  questions  are  considered  below. 

The  Information  Environment 

Information  Environment:  The  aggregate  of  individuals, 
organizations,  and  systems  that  collect,  process,  or  disseminate 
information  including  the  information  itself 

Joint  Pub  3-13^^ 

Effective  digital  deception  is  only  possible  from  within  a  highly  capable  information 
environment.  The  term  “information  environment”  can  easily  be  equated,  erroneously,  to 
Information  Technology  (IT).  Based  on  the  definition  above,  the  information  environment  is 
composed  of  more  than  megabytes,  baud  rates,  bandwidth,  and  operating  systems.  The  information 
environment  includes  people:  individuals  and  organizations  with  the  expertise  in,  and  mission  of  10. 
How  does  the  operational  commander  assemble  the  necessary  hardware  and  software  along  with  a 
team  of  skilled  technologists  so  as  to  have  in  place  the  needed  information  environment?  This  is  not 
an  easy  task. 

Alberts,  Garstka,  and  Stein  report  some  sobering  statistics  with  respect  to  IT  capability 
growth  rate  (statistics  are  as  of  1999): 

1.  Computer  chip  performance  has  doubled  every  18  months  for  the  past 
45  years. 

2.  Fiber  optic  cable  transmission  capacity  doubles  every  12  months.^^ 
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3.  Data  traffic  over  the  Internet  is  doubling  every  7.5  months. 

4.  Voice  traffic  over  the  Internet  core  is  doubling  every  4  months.^^ 

Given  these  growth  rates,  IT  capability  grows  four  fold  during  the  average  assignment  of  a 
combatant  commander  and  the  tours  of  the  information  technologists  under  his  or  her  command. 
Under  such  conditions,  it  is  unrealistic  to  expect  a  combatant  command,  increasingly  reliant  on  Net- 
Based  Knowledge  Acquisition  and  Control,  to  maintain  an  effective  10  team  organically.^*’ 
Recognizing  this  fact,  centralized  oversight  and  control  of  all  military  10  was  recently  assigned  to  the 
U.S.  Space  Command  (USCINCSPACE).  This  new  mission  includes  control  of  the  Joint 
Information  Operations  Center  that  has  the  responsibility  to  facilitate,  coordinate,  and  execute  10 
for  the  combatant  commands.  As  a  supporting  CINC,  USCINCSPACE  will  coordinate  the 
personnel,  equipment,  and  processes  necessary  to  conduct  10,  including  digital  deception. 
Supported  CINCs  will  likely  depend  on  USCINCSPACE  to  coordinate  with  service  component 
10  organizations  and  supporting  organizations  like  DISA  to  establish  a  robust  information 
environment  in  which  U.S.  information  can  be  processed,  transmitted  and  stored  securely. 
USCINCSPACE  will  draw  on  the  organic  expertise  that  exists  amongst  the  various  service  specific 
units  dedicated  to  10  (e.g..  The  Air  Eorce  Information  Warfare  Center;  the  Navy  Information 
Warfare  Activity,  the  Elect  Information  Warfare  Center;  and  the  Eand  Information  Warfare  Center), 
and  the  Defense  Information  Systems  Agency  (DISA). 

Computer  Network  Defense  (CND)  and  offensive  CNA  will  be  tasks  performed  within  the 
information  environment.  Treated  as  a  specific  “space,”  (i.e.,  factor  space),  the  information 
environment  can  be  managed  and  defended  using  a  Joint  Task  Eorce  (JTE)  approach  just  as  with 
any  other  distinct  space  within  a  theater  of  operations.  Recognizing  the  importance  of  computer 
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network  protection  with  respect  to  10,  USCINCSPACE,  recently  established  a  Joint  Task  Force 


for  Computer  Network  Defense  (JTF-CND).  Although  not  a  campaign  specific  JTF,  this  task 
force  can  be  assigned  missions  in  support  of  the  combatant  commands,  or  conduct  ongoing 
“generic”  CND  for  U.S.  operational  forces.  Each  operation,  each  campaign,  each  theater  requires 
a  custom  organization  in  which  the  information  environment  may  be  a  minor  consideration  or  a 
significant  “space.”  As  U.S.  rehance  on  information  technology  and  information  networks  grows,  it 
is  certainly  possible  that  USCINCSPACE  will  become  the  supported  CINC  and  the  information 
environment  will  be  the  major  theater  of  operations.  Digital  deception  can  be  conducted,  regardless 
of  the  organization  of  the  information  environment.  Digital  deception  organization  and  planning  are 
discussed  in  a  later  section. 


National  Information  Policy,  Information  Law,  and  Deception 

Yet  today  many  Western  democracies  are  in  the  position  whereby  it 
is  legally  easier  for  them  to  drop  a  laser  guided  bomb  through  an 
opponent’s  window,  than  crack  into  his  computer  system.  Indeed 
legislators,  and  the  public  at  large,  as  yet  have  failed  to  grasp  the 
fact  that  another  government  cracking  into  a  government 
computer,  or  putting  a  hacksaw  through  a  fiber  cable,  is  acting  no 
differently  than  if  they  were  shooting  off  a  ballistic  missile  or 
lobbing  a  satchel  charge  into  a  munitions  depot.  It  is  an  act  of 
war,  in  every  sense  of  the  word. 

Carlo  Kopp^° 

It  is  only  fitting  that  the  mles,  laws,  and  pohcies  related  to  10  are  as  complex  as  the 

information  environment  for  which  they  are  written.  Can  10  be  considered  an  act  of  war?  Is  10  an 

armed  conflict?  The  DoD  Office  of  General  Counsel  states: 

“It  is  by  no  means  clear  what  information  operations  techniques  will  end  up 
being  considered  to  be  “weapons,”  or  what  kinds  of  information  operations  will 
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be  considered  to  constitute  armed  conflict. ...If  the  deliberate  actions  of  one 
belligerent  cause  injury,  death,  damage,  and  destmction  to  the  military  forces, 
citizens,  and  property  of  the  other  belligerent,  those  actions  are  likely  to  be 
judged  by  applying  traditional  law  of  war  principles.”^' 

The  U.S.  Justice  Department  however,  maintains  a  different  view: 

“It  would  be  inappropriate  for  the  Justice  Department  to  offer  comment,  in 
response  to  the  Defense  Department’s  questions,  on  when  a  hack  might 
legally  constitute  ‘information  warfare.’  Rather,  what  we  would  say  is  this: 
unless  an  established  predicate  of  international  law  (such  as  Article  51  of  the 
U.N.  Charter)  has  been  met,  the  matter  remains  one  for  the  law  enforcement 
community,  intelligence  community,  or  both.  And  in  most  cases,  our  initial  lack 
of  information  will  demand  that  we  presume  that  (1)  the  case  is  a  criminal 
matter  (as  opposed  to  a  national  security  case)  and  (2)  the  hacker  is  protected 
by  the  Fourth  Amendment  as  well  as  the  laws  of  the  United  States.  These 
two  presumptions  are  both  necessary  and  practical  because  of  the 
fundamental  nature  of  networks  and  of  network  attacks  and  investigations.”^^ 

And  lest  the  general  pubhc  beheve  considerations  of  war  are  something  for  only  the  military  to  be 

concerned  with,  the  DoD  General  Counsel  also  notes: 

“If  combatant  acts  are  conducted  by  unauthorized  persons,  their  government 
may  be  in  violation  of  the  law  of  war,  depending  on  the  circumstances,  and  the 
individuals  concerned  are  at  least  theoretically  subject  to  criminal  prosecution 
either  by  the  enemy  or  by  an  international  war  crimes  tribunal.”^^ 

At  this  point,  10  Law  is  not  clearly  dehneated.  Although  the  precedence  set  by  the  “law  of 

war”  with  respect  to  conventional  means  is  valuable  and  even  citable,  10  raises  many  questions  with 

few  specific  answers.  The  DoD  Counsel  concludes: 

“There  seems  to  be  little  likelihood  that  the  international  legal  system  will  soon 
generate  a  coherent  body  of  ‘information  operations’  law.  The  most  useful 
approach  to  the  international  legal  issues  raised  by  information  operations 
activities  will  continue  to  be  to  break  out  the  separate  elements  and 
circumstances  of  particular  planned  activities  and  then  to  make  an  informed 
judgment  as  to  how  existing  international  legal  principles  are  likely  to  apply  to 
them.  In  some  areas,  such  as  the  law  of  war,  existing  legal  principles  can  be 
applied  with  considerable  confidence.  In  other  areas,  such  [as]  the  application 
of  use  of  force  principles  to  adopting  an  ‘active  defense,’  it  is  much  less  clear 
where  the  international  community  will  come  out,  and  the  result  will  probably 
depend  more  on  the  perceived  equities  of  the  situations  in  which  the  issues  first 
arise  in  practice  than  on  legal  analysis.  The  growth  of  international  law  in 
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these  areas  will  be  greatly  influenced  by  what  decision-makers  say  and  do  at 
those  critical  moments.”^"^ 

Some  aspects  of  the  “law  of  war”  are  directly  applicable  to  the  planning  and  conduct  of 
digital  deception.  Most  notably,  the  concept  of  perfidy  does  not  change.  Digital  deception  cannot 
feign  surrender,  cease-fire,  or  armistice.  It  cannot  camouflage  deployment  and  maneuver  using  the 
veil  of  neutrality  or  the  illusion  of  prisoner  of  war  and  medical  activities.  These  restrictions  are  valid 
on  the  physical  battlefield  and  within  the  digital  domain. 

Preparation  for  deception  may  be  ongoing,  regardless  of  the  CINC’s  status:  at  peace  or  at 
war.  Within  the  constraints  of  current  legal  information  law,  and  using  the  best  available  intelligence, 
deception  mechanisms,  including  actual  interactions  with  potential  targets  may  be  needed,  before 
hostilities  occur.  Preparing  the  illusion  and  gaining  the  tmst  of  the  target  may  occur  at  the 
boundaries  of  the  10  legal  framework. 

The  message  to  the  combatant  commander  is:  10  presents  a  unique  legal  challenge. 
Because  10  law  is  in  a  state  of  flux,  the  CINC  must  ensure  their  legal  counsel  remains  current  on  10 
law  evolution  in  order  to  employ  effective  10  and  stay  within  the  legal  constraints  of  the  day.  As 
CINCs  plan  10  activities,  including  deception,  they  should  ensure  that  legal  counsel  is  an  active 
member  of  the  planning  of  those  efforts  and  that  procedures  are  in  place  to  ensure  legal  counsel 
review  is  obtained  as  10  occurs  so  that  aU  operations  remain  within  the  constraints  of  the  law.^^ 
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The  Asymmetric  Threat 


...we  teach  the  pupil  to  act  on  the  fundamental  principles  of  Judo, 
no  matter  how  physically  inferior  his  opponent  may  seem  to  him, 
and  even  if  by  sheer  strength  he  can  easily  overcome  him;  because 
if  he  acts  contrary  to  principle  his  opponent  will  never  be 
convinced  of  defeat,  no  matter  what  brute  strength  he  may  have 
used. 

Jigoro  Kano^^ 


Asymmetric  warfare  can  be  characterized  as  the  use  of  unusual,  unexpected,  and 

unpredictable  strategies,  operations,  and  tactics  to  offset  a  mihtary  power  imbalance  between 

adversaries.  As  the  sole  mihtary  superpower,  the  U.S.  can  expect  virtually  all  adversaries  to  utilize 

asymmetric  techniques.  Cyberspace  is  an  enabler  of  asymmetric  warfare.  Newland  observes: 

"IW  is  a  sort  of  “Charles  Atlas  in  a  pill,”  an  immediate  equalizer.  To  assume 
information  dominance  and  automatic  information  superiority  simply  because 
of  superpower  status  is  the  height  of  arrogance.  Even  the  smallest,  poorest 
country  can  find  the  resources  to  fund  intmsions,  computer  vimses,  logic 
bombs  and  system  manipulation  in  the  global  Internet  to  which  the  US 
military’s  C4I  stmcture  is  not  only  attached  but  embedded.  It  may  not  even  be 
a  country  that  funds  such  activity.  The  major  threat  may  be  asymmetric  in 
nature." 

The  U.S.  can  expect  the  expanse  of  potential  adversaries  to  rapidly  grow  with  the  success 
and  relative  ease  of  implementation  of  asymmetric  strategies  and  tactics.  Lind  and  others  observe 
that  the  next  generation  of  warfare,  what  they  refer  to  as  “Fourth  Generation  Warfare,”  will  hkely 
see  a  battlefield  that  will  “include  the  whole  of  the  enemy’s  society.”^'*  They  further  observe: 

“. .  .fourth  generation  warfare  seems  likely  to  be  widely  dispersed  and  largely  undefined;  the 
distinction  between  war  and  peace  will  be  blurred  to  the  vanishing  point.  It  will  be  nonhnear, 
possibly  to  the  point  of  having  no  definable  battlefields  or  fronts.  The  distinction  between  ‘civihan’ 
and  ‘mihtary’  may  disappear.”^' 
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In  the  aftermath  of  the  “downing”  by  China  of  a  U.S.  EP-3  reconnaissance 


aircraft  in  April  2001,  the  Washington  Times  reported  the  following: 

“Computer-savvy  citizens  of  both  China  and  the  United  States  have 
begun  their  own  war  on  the  Internet  as  relations  between  the  two  powers 
continue  to  deteriorate. 

American  hackers  are  urging  each  other  to  break  into  Web  sites  hosted  in 
China,  and  they  say  that  U.S.  hackers  have  already  penetrated  hundreds  of 
Chinese  Webs  sites.  Chinese  hackers  are  vowing  to  retaliate  with  a  weeklong 

42 

attack  on  U.S. -based  Web  sites  and  computer  networks. . .” 
hr  this  example,  who  is  the  target  for  C2W  efforts?  Is  it:  The  Chinese  Mihtary?  The 
Chinese  Government?  A  dissident  Chinese  organization?  The  Chinese  population  at  large?  And 
what  of  the  U.S.  hackers  conducting  unauthorized  and  probable  illegal  10?  The  target  could  reside 
in  any  or  aU.  Are  China  and  the  United  States  at  peace  or  at  war?  What  are  the  legal  imphcations 
of  conducting  C2W  against  the  threatened  attacks?  Operating  in  Cyberspace,  factor  time 
approaches  zero,  factor  space  expands  to  virtually  the  entire  world,  and  factor  force  is  arguably 
only  limited  by  the  availabihty  of  a  personal  computer  and  a  connection  to  the  Internet.  It  is  easy  to 
conclude  that  asymmetric  warfare  levels  the  Information  Superiority  battlefield. 

Intelligence  and  timing  are  key  to  the  combatant  commander’s  abihty  to  conduct 
deception  in  an  asymmetric  theater  of  operations.  The  field-of-view  for  inteUigence  efforts  must 
widen  to  consider  the  full  extent  of  potential  adversaries  in  the  CINC’s  area  of  responsibility.  The 
CINC’s  intelligence  organization  must  be  prepared  for  quick  reaction.  In  an  asymmetric  theater; 
adversaries  will  emerge,  depart,  and  transform  to  a  given  situation  with  tightening  fast  response. 
Intelligence  support  in  such  an  environment  is  no  small  task,  and  if  considered  critical  in  traditional 
deception,  becomes  vital  in  digital  deception. 
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Doctrine  and  The  Principles  of  Deception  for  the  Digital  Domain 


...the  control  of  a  deceptive  operation  must  be  decided  upon  the  self- 
evident  principle  that  no  people  can  safely  tell  the  same  lie  to  the  same 
person  except  by  closely  concerted  action. 


R.F.  HeskeM^ 

What  doctrine  applies  when  planning  and  implementing  digital  deception?  Digital  deception 
is  an  element  of  Mihtary  Deception,  C2W,  10,  and  C4.  Effective  digital  deception  will  require 
significant  coordination  between  the  operational  planners  assigned  to  each  of  these  areas. 

Joint  doctrine  for  10  states:  “10  requires  early  integration  between  components,  groups, 
organizations,  and  agencies  involved  in  planning  and  executing  10  actions  and  activities” 

(emphasis  mine).'^"^  Doctrine  for  C2W  and  Mihtary  Deception  has  similar  statements  emphasizing 
the  importance  of  coordination."^^  Although  not  specificaUy  identified  in  U.S.  Joint  C4  doctrine, 
digital  deception  wiU  utihze  C4  assets  and  be  tied  to  the  overaU  C4  infrastmcture.  Coordination  with 
the  overseers  of  the  C4  system  is  imperative  lest  the  deceiver  becomes  the  deceived. 

U.  S.  doctrine  for  mihtary  deception  as  defined  in  Joint  Pub  3-58  identifies  six  principles  of 
mihtary  deception:  Focus,  Objective,  Centrahzed  Control,  Security,  Timehness,  and  Integration."^'’ 
Certain  characteristics  of  digital  deception  are  of  interest  when  considering  each  of  the  principles. 

Focus 

As  with  traditional  deception,  an  adversary  decision  maker  must  be  the  target.  Joint  Pub  3- 
58  states:  “The  adversary’s  intehigence  system  is  normahy  not  the  target.  It  is  only  the  primary 
conduit  used  by  deceivers  to  get  selected  information  to  the  decision  maker.”"^’  A  digital  deception 
corohary  to  this  pronouncement  is:  The  information  environment  is  normahy  not  the  target.  It  is  only 
the  conduit  used  to  get  selected  information  to  the  targeted  decision  maker. 
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Objective 


The  objective  of  deception,  digital  or  otherwise,  is  to  achieve  a  desired  enemy  decision. 
Whether  that  decision  is  strategic,  operational,  or  tactical  in  nature  determines  at  which  level  of  war 
the  deception  is  associated  and  who  the  specific  target  wiU  be.  Therefore,  deception  planning  at  the 
highest  level  begins  with  identifying  the  desired  decision,  which  leads  to  the  choice  of  one  or  more 
targets  that  wiU  either  make  or  influence  the  decision.  Once  the  target(s)  are  identified,  their 
understanding  and  beliefs  are  assessed  to  determine  the  design  of  the  deception  (e.g.,  physical, 
digital,  etc.).  Accurate,  detailed  inteUigence  is  the  key  to  the  success  of  deception.  The  more  that 
is  known  of  the  target,  their  education,  experience,  motivations,  and  values,  the  easier  it  is  to  gain 
their  tmst  through  the  illusion.  If  digital  deception  is  to  be  used,  specific  questions  to  be  asked 
include:  What  tmst  does  the  target  place  in  digital  information?  What  are  their  perceptions  of 
cyberspace?  Their  biases?  What  wiU  create  a  sense  of  integrity  regarding  the  deceptive  information 
to  be  passed  on? 

Centralized  Control 

During  WWn,  the  London  ControUing  Section  (LCS)  was  the  first  organization  established 
at  the  operational  level  with  the  sole  purpose  of  planning  deception  strategies.  Winston  Churchill 
personally  oversaw  its  design  and  participated  in  its  actions."^^  The  need  for  centralized  control  of 
digital  deception  efforts  is  only  magnified  by  the  complexities  associated  with  operating  across 
multiple  doctrines. 
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Security 


Churchill  observed:  “In  war  time,  tmth  is  so  precious  that  she  should  always  be  attended  by 
a  bodyguard  of  hes.”^^  Ensuring  the  security  of  the  deception,  its  intent,  its  means,  its  mere 
existence,  is  critical  in  maintaining  the  tmst  of  the  target.  Equally  as  important,  the  security  of  the 
intelligence  sources  that  feed  the  deception  is  paramount.  Because  Churchill  prized  his  possession 
of  the  German  Enigma  machine  so  highly,  he  directed  no  action  be  taken  in  response  to  decoded 
intercepts  unless  cover  could  be  provided.^”  He  went  as  far  as  to  repeatedly  allow  naval  convoys 
to  come  under  U-boat  attack  rather  than  risk  compromising  the  fact  that  he  could  break  the  German 
codes. 

The  complexity  of  protecting  digital  deception  plans  is  elevated  because  of  the  increased 
amount  of  coordination  required  to  take  place  between  the  various  operational  elements.  The 
pyramid  of  potential  security  breeches  grows  geometrically  with  each  and  every  “need-to- 
know”  element  entrusted  with  the  deception  plan. 

Timeliness 

Deception  timing  presents  a  dichotomy  with  respect  to  the  nature  of  cyber  operations  and 
the  need  to  create  a  tmst  relationship  with  the  target.  Eactor  time  collapses  in  cyberspace.  On  the 
other  hand,  planning  deception  and  operating  to  gain  the  tmst  of  the  target  demands  time.  Hesketh 
observed:  “Although  there  may  be  occasions  when  its  [deception]  services  can  be  usefully  enlisted 
to  give  immediate  aid,  it  is  generally  more  correct  to  regard  it  as  a  method  which  achieves  its  results 
by  a  slow  and  gradual  process  rather  than  by  hghtning  strikes.  Eike  the  fly-wheel  of  an  engine,  it 
requires  time  to  gain  momentum  and  time  again  to  lose  it.”^^ 
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To  establish  the  requisite  trust,  the  wheels  of  deception  may  need  to  be  set  in  motion  before 


the  target  is  clearly  defined  and  the  operahon  planned.  This  magnifies  the  need  for  a  constant  flow 
of  intelhgence  to  the  CINC  so  that  deception  conhngencies  can  be  considered.  Within  the  assigned 
area  of  operahon,  who  are  the  potential  threats?  How  can  they  be  deceived?  What  10  can  be 
conducted  during  peacetime  to  expedite  the  inihation  of  decephon  when  conflict  arises?  What  are 
the  legal  constraints  that  bound  10  and  decephon  activihes  in  and  out  of  war?  These  are  ah 
queshons  to  be  pursued  routinely  to  facihtate  efficient  and  effechve  10  including  digital  decephon. 

Integration 

“Each  decephon  must  be  fully  integrated  with  the  basic  operahon  it  is  supporhng.  [To  ensure 
it  is  deconfhcted  with  other  aspects  and  phases  of  the  operahon.]  The  development  of  the 
decephon  concept  must  occur  as  part  of  the  development  of  the  commander’s  concept  of 
operahons.  Decephon  planning  should  occur  simultaneously  with  operation  planning.”^^ 

Because  of  the  extensive  reliance  on  informahon  and  network-based  operahons  by  U.S. 
operahonal  forces,  an  10  planning  ceh  reporhng  directly  to  the  J3  is  advisable.  Within  the  10 
planning  ceh,  a  ceh  for  digital  decephon  is  needed  to  assign  roles,  responsibihhes,  levels  of  authority, 
and  support  requirements  for  the  digital  decephon,  and  to  ensure  ah  enhhes  within  the  JTF  affected 
by  the  planned  deception  are  aware  of  the  operahon  and  how  it  relates  to  their  area  of 
responsibihty.  An  obvious  choice  to  lead  digital  decephon  planning  is  the  newly  established  JTF- 
CND.  Arguably,  digital  deception  is  a  form  of  CND,  and  as  an  element  of  the  overah  combatant 
command  with  10  responsibihty  (i.e.,  USCINCSPACE),  the  JTE  is  ideahy  situated  to  coordinate 
digital  deception  plans  with  the  overah  10  effort.  On  the  CINC  staff.  Special  Technical  Operations 
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(STO)  has  the  "Big  Picture"  insight  across  the  activities  of  the  CINC  to  ensure  necessary 
coordination  occurs  and  should  represent  the  CINC  during  digital  deception  planning. 

The  nuances  of  the  principles  of  deception  when  utihzing  cyberspace  are  subtle.  They  do 
not  necessarily  determine  the  abihty  to  conduct  digital  deception,  but  they  certainly  drive  the  quahty 
of  the  deception  and  the  ease  of  implementing  the  deception. 

Conclusions 

I  make  the  enemy  see  my  strengths  as  weakness  and  my  weaknesses  as 
strengths  while  I  cause  his  strengths  to  become  weaknesses  and 
discover  where  he  is  not  strong. 

Sun  Tzu^‘* 

All  warfare  is  based  upon  deception. 

Sun  Tzu^^ 

Digital  deception  is  a  viable  and  inevitable  tool  for  the  operational  commander.  Deception 
operations  in  the  digital  domain,  although  at  their  core,  the  same  as  other  deception  activity,  do  call 
for  special  considerations.  The  information  environment  is  complex  and  dynamic.  Digital  deception, 
and  10  in  general  are  cutting  new  ground  with  respect  to  international  law.  U.S.  information 
policies,  and  agency  roles  and  responsibilities  are  murky  at  best.  The  asymmetric  threat  increases 
the  C2W  target  set,  collapses  factor  time,  and  magnifies  factors  space  and  force.  Digital  deception 
spans  a  number  of  critical  U.S.  mihtary  doctrines  without  specific  consideration  in  any. 

Conducted  effectively,  digital  deception  can  be  a  “multiplier,”  a  deception  multipher.  When 
one  considers  the  depth  to  which  10  permeates  into  all  aspects  of  mihtary  operations,  deception  in 
cyberspace  gives  the  combatant  commander  the  ability  to  develop  deception  in  areas  possibly  not 
practical  to  pursue  in  the  physical  realm.  Granted,  some  level  of  physical  activity  wiU  be  required  to 
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authenticate  the  digital  deception.  However,  once  authenticity  is  estabhshed,  the  scope  of  a 
deception  in  cyberspace  can  greatly  exceed  the  physical  resource  limitations  an  operation.  Effective 
digital  deception  offers  the  potential  of  being  a  key  enabhng  factor  in  the  U.S.  pursuit  of  dominance 
across  the  cognitive  hierarchy. 
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